Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-9222

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. (Vulnerability ID: HWPSIRT-2020-05241) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9222.

Published

2024-12-27T10:15:15.270

Last Modified

2025-01-15T14:50:26.910

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.0 (HIGH)

Weaknesses

Type: Secondary
CWE-269
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	huawei	fusioncompute	6.3.0	Yes
Application	huawei	fusioncompute	6.3.1	Yes
Application	huawei	fusioncompute	6.5.0	Yes
Application	huawei	fusioncompute	6.5.1	Yes
Application	huawei	fusioncompute	8.0.0	Yes

References

https://www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200826-01-fc-en Vendor Advisory ([email protected])